本ページは samsung magicinfo_9_server に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2026-25202 | The database account and password are hardcoded, allowing login with the account to manipulate the database in MagicInfo9 Server.This issue affects MagicINFO 9 Server: less than 21.1090.1. | [email protected] | 9.8 | 0.44% | 2026-02-02 | 2026-06-17 |
| CVE-2026-25201 | An unauthenticated user can upload arbitrary files to execute remote code, leading to privilege escalation in MagicInfo9 Server. This issue affects MagicINFO 9 Server: less than 21.1090.1. | [email protected] | 8.8 | 0.40% | 2026-02-02 | 2026-06-17 |
| CVE-2026-25200 | A vulnerability in MagicInfo9 Server allows authorized users to upload HTML files without authentication, leading to Stored XSS, which can result in account takeover This issue affects MagicINFO 9 Server: less than 21.1090.1. | [email protected] | 9.8 | 0.49% | 2026-02-02 | 2026-06-17 |
| CVE-2025-54455 | Use of Hard-coded Credentials vulnerability in Samsung Electronics MagicINFO 9 Server allows Authentication Bypass.This issue affects MagicINFO 9 Server: less than 21.1080.0. | [email protected] | 9.1 | 0.56% | 2025-07-23 | 2026-06-17 |
| CVE-2025-54454 | Use of Hard-coded Credentials vulnerability in Samsung Electronics MagicINFO 9 Server allows Authentication Bypass.This issue affects MagicINFO 9 Server: less than 21.1080.0. | [email protected] | 9.1 | 0.52% | 2025-07-23 | 2026-06-17 |
| CVE-2025-54453 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0. | [email protected] | 8.8 | 0.57% | 2025-07-23 | 2026-06-17 |
| CVE-2025-54452 | Improper Authentication vulnerability in Samsung Electronics MagicINFO 9 Server allows Authentication Bypass.This issue affects MagicINFO 9 Server: less than 21.1080.0. | [email protected] | 7.3 | 0.37% | 2025-07-23 | 2026-06-17 |
| CVE-2025-54451 | Improper Control of Generation of Code ('Code Injection') vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0. | [email protected] | 9.8 | 0.60% | 2025-07-23 | 2026-06-17 |
| CVE-2025-54450 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0. | [email protected] | 7.2 | 0.59% | 2025-07-23 | 2026-06-17 |
| CVE-2025-54449 | Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0. | [email protected] | 9.8 | 0.57% | 2025-07-23 | 2026-06-17 |
| CVE-2025-54448 | Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0. | [email protected] | 9.8 | 0.56% | 2025-07-23 | 2026-06-17 |
| CVE-2025-54447 | Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0. | [email protected] | 8.1 | 0.46% | 2025-07-23 | 2026-06-17 |
| CVE-2025-54446 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0 | [email protected] | 9.8 | 0.57% | 2025-07-23 | 2026-06-17 |
| CVE-2025-54445 | Improper Restriction of XML External Entity Reference vulnerability in Samsung Electronics MagicINFO 9 Server allows Server Side Request Forgery.This issue affects MagicINFO 9 Server: less than 21.1080.0. | [email protected] | 8.2 | 9.22% | 2025-07-23 | 2026-06-17 |
| CVE-2025-54444 | Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0. | [email protected] | 9.8 | 0.56% | 2025-07-23 | 2026-06-17 |
| CVE-2025-54443 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0 | [email protected] | 9.8 | 0.55% | 2025-07-23 | 2026-06-17 |
| CVE-2025-54442 | Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0. | [email protected] | 9.8 | 0.45% | 2025-07-23 | 2026-06-17 |
| CVE-2025-54441 | Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0. | [email protected] | 8.8 | 7.39% | 2025-07-23 | 2026-06-17 |
| CVE-2025-54440 | Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0. | [email protected] | 9.8 | 0.45% | 2025-07-23 | 2026-06-17 |
| CVE-2025-54439 | Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0. | [email protected] | 8.8 | 6.86% | 2025-07-23 | 2026-06-17 |